Download Chapter 05

Survey
yes no Was this document useful for you?
   Thank you for your participation!

* Your assessment is very important for improving the workof artificial intelligence, which forms the content of this project

page
1
page
2
page
3
page
4
page
5
page
6
page
7
page
8
page
9
page
10
page
11
page
12
page
13
page
14
page
15
page
16
page
17
page
18
page
19
page
20
page
21
Document related concepts

Security-focused operating system wikipedia , lookup

Wireless security wikipedia , lookup

Information privacy law wikipedia , lookup

Computer security wikipedia , lookup

Cross-site scripting wikipedia , lookup

Computer and network surveillance wikipedia , lookup

Unix security wikipedia , lookup

Access control wikipedia , lookup

Mobile security wikipedia , lookup

Transcript 
CS457
Introduction to Information
Security Systems
Database and Cloud Security
Databases
• Structured collection of data stored for use by one or more
applications
• Contains the relationships between data items and groups of
data items
• Can sometimes contain sensitive data that needs to be secured
• Query language
• Provides a uniform interface to the database
Database Management System
(DBMS)
• Suite of programs for constructing and maintaining
the database
• Offers ad hoc query facilities to multiple users and
applications
DBMS Architecture
Structured Query Language
(SQL)
•
•
•
•
Standardized language to define schema, manipulate, and
query data in a relational database
Several similar versions of ANSI/ISO standard
All follow the same basic syntax and semantics
SQL statements can be used to:
• Create tables
• Insert and delete data in tables
• Create views
• Retrieve data with query statements
SQL Injection Attacks (SQLi)
• One of the most prevalent
and dangerous networkbased security threats
• Designed to exploit the
nature of Web application
pages
• Sends malicious SQL
commands to the database
server
• Most common attack goal is
bulk extraction of data
• Depending on the
environment SQL injection
can also be exploited to:
• Modify or delete data
• Execute arbitrary operating
system commands
• Launch denial-of-service (DoS)
attacks
SQL Injection Attack
Injection Technique
• The SQLi attack typically works by prematurely terminating a
text string and appending a new command
• Because the inserted command may have additional
strings appended to it before it is executed the attacker
terminates the injected string with a comment mark “- -”
• Subsequent text is ignored at execution time
SQLi Attack Avenues
• User input
Attackers inject SQL commands by providing suitable crafted user input
• Server variables
Attackers can forge the values that are placed in HTTP and network
headers and exploit this vulnerability by placing data directly into the
headers
• Second-order injection
A malicious user could rely on data already present in the system or
database to trigger an SQL injection attack, so when the attack occurs, the
input that modifies the query to cause an attack does not come from the
user, but from within the system itself
• Cookies
An attacker could alter cookies such that when the application server
builds an SQL query based on the cookie’s content, the structure and
function of the query is modified
• Physical user input
Applying user input that constructs an attack outside the realm of web
requests
Inferential Attack
• There is no actual transfer of data, but the attacker is able to
reconstruct the information by sending particular requests and
observing the resulting behavior of the Website/database server
• Include:
• Illegal/logically incorrect queries
• This attack lets an attacker gather important information about the type
and structure of the backend database of a Web application
• The attack is considered a preliminary, information-gathering step for
other attacks
• Blind SQL injection
• Allows attackers to infer the data present in a database system even
when the system is sufficiently secure to not display any erroneous
information back to the attacker
SQLi Countermeasures
•Defensive coding
•Manual defensive coding practices
•Parameterized query insertion
•SQL DOM
•Detection
•Signature based
•Anomaly based
•Code analysis
•Run-time prevention
•Check queries at runtime to see if they conform to a model of
expected queries
Database Access Control
•Database access control system determines
•If the user has access to the entire database or just portions of it
•What access rights the user has (create, insert, delete, update, read,
write)
•Can support a range of administrative policies
•Centralized administration
•Small number of privileged users may grant and revoke access rights
•Ownership-based administration
•The creator of a table may grant and revoke access rights to the table
•Decentralized administration
•The owner of the table may grant and revoke authorization rights to
other users, allowing them to grant and revoke access rights to the
table
SQL Access Controls
• Two commands for managing access rights:
• Grant
• Used to grant one or more access rights or can be used
to assign a user to a role
• Revoke
• Revokes the access rights
• Typical access rights are:
• Select
• Insert
• Update
• Delete
• References
Privilege Revoke
Role-Based Access Control
(RBAC)
• Role-based access control eases administrative burden and
improves security
• A database RBAC needs to provide the following capabilities:
• Create and delete roles
• Define permissions for a role
• Assign and cancel assignment of users to roles
• Categories of database users:
• Application owner
• An end user who owns database objects as part of an application
• End user
• An end user who operates on database objects via a particular application
but does not own any of the database objects
• Administrator
• User who has administrative responsibility for part or all of the database
Inference Channel
Inference Example
Inference Detection
• Two approaches
• Inference detection during database design
• Approach removes an inference channel by altering the database structure or
by changing the access control regime to prevent inference
• Techniques in this category often result in unnecessarily stricter access
controls that reduce availability
• Inference detection at query time
• Approach seeks to eliminate an inference channel violation during a query or
series of queries
• If an inference channel is detected, the query is denied or altered
•
•
Some inference detection algorithm is needed for either of these approaches
Progress has been made in devising specific inference detection techniques
for multilevel secure databases and statistical databases
Database Encryption

The database is typically the most valuable information resource for any organization

Protected by multiple layers of security
 Firewalls, authentication, general access control systems, DB access control
systems, database encryption
 Encryption

becomes the last line of defense in database security
Can be applied to the entire database, at the record level, the attribute level,
or level of the individual field
 Disadvantages to encryption:
 Key management
Authorized users must have access to the decryption key for the data for which
they have access
 Inflexibility
When part or all of the database is encrypted it becomes more difficult to perform
record searching
Database Encryption Scheme
- Data owner: organization that produces data to be made available for controlled release
- User:
human entity that presents queries to the system
- Client:
frontend that transforms user queries into queries on the encrypted data
stored on the server
- Server:
an organization that receives the encrypted data from a data owner and
makes them available for distribution to clients
Summary
• The need for Database
Security
• Database Management
Systems
• Relational Databases
• Elements of a relational
database system
• Structured Query Language
• Inference
• SQL injection attacks (SQLi)
•
•
•
•
A typical SQLi attack
The injection technique
SQLi attack avenues and types
SQLi countermeasures
• Database Access Control
• SQL-based access definition
• Cascading authorizations
• Role-based access control
• Database Encryption
Related documents
Slides
Slides
jAdmin: Remote database admin tool
jAdmin: Remote database admin tool
Assignment: SQL #2 Putting Data into the Database
Assignment: SQL #2 Putting Data into the Database
Smart Search
Smart Search
Document
Document
Database Presentation
Database Presentation
PPT - ETH Systems Group
PPT - ETH Systems Group
Database Security - Security and Privacy Concerns
Database Security - Security and Privacy Concerns
Chapter IV computer security
Chapter IV computer security
Elements of SQL Data Definition Language
Elements of SQL Data Definition Language
WHAT IS SQL INJECTION? ANATOMY OF A SQL INJECTION
WHAT IS SQL INJECTION? ANATOMY OF A SQL INJECTION
MODULE NAME: MODELS OF DATABASE AND DATABASE DESIGN
MODULE NAME: MODELS OF DATABASE AND DATABASE DESIGN
File
File
Using Access to Hack Your Data
Using Access to Hack Your Data
Technology in Action, Seventh Edition Answer Key Chapter 11 Word
Technology in Action, Seventh Edition Answer Key Chapter 11 Word
6. Database Management Systems
6. Database Management Systems
Task #1
Task #1
Riga Technical University
Riga Technical University
slides (6pp)
slides (6pp)
Database Security - Tennessee State University
Database Security - Tennessee State University